QUESTION 1You manage a Microsoft SQL Server environment. You implement Transparent Data Encryption (TDE).A user will assist in managing TDE.You need to ensure that the user can view the TDE metadata while following the principle of lease privilege.Which permission should you grant?

QUESTION 2You are the database administrator for a company that hosts Microsoft SQL Server. You manage both on-premises and Microsoft Azure SQL Database environments. You have a user database named HRDB that contains sensitive human resources data. The HRDB backup files must be encrypted.You need to grant the correct permission to the service account that backs up the HRDB database.Which permission should you grant?

Answer: GExplanation:Restoring the encrypted backup: SQL Server restore does not require any encryption parameters to be specified during restores. It does require that the certificate or the asymmetric key used to encrypt the backup file be available on the instance that you are restoring to. The user account performing the restore must have VIEW DEFINITION permissions on the certificate or key.https://docs.microsoft.com/en-us/sql/relational-databases/backup-restore/backupencryption

QUESTION 3You are the database administrator for a company that hosts Microsoft SQL Server. You manage both on-premises and Microsoft Azure SQL Database environments. You plan to delegate encryption operations to a user. You need to grant the user permission to implement cell-level encryption while following the principle of least privilege.Which permission should you grant?

QUESTION 4A company has an on-premises Microsoft SQL Server environment and Microsoft Azure SQL Database instances. The environment hosts a customer database named DB1. Customers connect to hosted database instances by using line-of-business applications. Developers connect by using SQL Server Management Studio (SSMS). You need to grant the developers permission to alter views for DB1 while following the principle of least privilege.Which permission should you grant?

Answer: DExplanation:Data Collector can gather performance information from multiple SQL Server instances and store it in a single repository. It has three built-in data collecting specifications (data collectors) designed to collect the most important performance metrics. The information collected by default is about disk usage, query statistics, and server activity. The Query Statistics data collection set collects information about query statistics, activity, execution plans and text on the SQL Server instance. Missing indexes can be found with the execution plans.https ://www.sqlshack.com/sql-server-performance-monitoring-data-collector/

QUESTION 6You have a database named DB1 that stores more than 700 gigabyte (GB) of data and serves millions of requests per hour.Queries on DB1 are taking longer than normal to complete.You run the following Transact-SOL statement:SELECT* FROM sys.database_query_store_optionsYou determine that the Query Store is in Read-Only mode. You need to maximize the time that the Query Store is in Read-Write mode.Which Transact-SOL statement should you run?

Answer: CExplanation:Stale Query Threshold (Days): Time-based cleanup policy that controls the retention period of persisted runtime statistics and inactive queries.By default, Query Store is configured to keep the data for 30 days which may be unnecessarily long for your scenario.Avoid keeping historical data that you do not plan to use. This will reduce changes to read-only status. The size of Query Store data as well as the time to detect and mitigate the issue will be more predictable. Use Management Studio or the following script to configure time-based cleanup policy:ALTER DATABASE [QueryStoreDB]SET QUERY_STORE (CLEANUP _POLICY= (STALE_QUERY_THRESHOLD_DAYS = 14)); https://docs.microsoft.com/en-us/sql/relational-databases/performance/best-practicewith-the-query-store